CVE-2019-10051Improper Check for Unusual or Exceptional Conditions in Suricata

CWE-754Improper Check for Unusual or Exceptional Conditions8 documents6 sources
Severity
7.5HIGHNVD
EPSS
0.6%
top 30.58%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Oisf SuricataSuricata-ids Suricata
Timeline
PublishedAug 28
Latest updateMay 24

Description

An issue was discovered in Suricata 4.1.3. If the function filetracker_newchunk encounters an unsafe "Some(sfcm) => { ft.new_chunk }" item, then the program enters an smb/files.rs error condition and crashes.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

Debianoisf/suricata< 1:4.1.4-1+3
NVDsuricata-ids/suricata4.1.3, 4.1.4+1

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

3
GHSA
GHSA-3prm-h683-4rg5: An issue was discovered in Suricata 42022-05-24
OSV
CVE-2019-10051: An issue was discovered in Suricata 42019-08-28
CVEList
CVE-2019-10051: An issue was discovered in Suricata 42019-08-28

📋Vendor Advisories

1
Debian
CVE-2019-10051: suricata - An issue was discovered in Suricata 4.1.3. If the function filetracker_newchunk ...2019

💬Community

3
Bugzilla
CVE-2019-10051 suricata: denial of service in function filetracker_newchunk [fedora-all]2019-08-29
Bugzilla
CVE-2019-10051 suricata: denial of service in function filetracker_newchunk2019-08-29
Bugzilla
CVE-2019-10051 suricata: denial of service in function filetracker_newchunk [epel-7]2019-08-29
CVE-2019-10051 — Suricata-ids Suricata vulnerability | cvebase